Cybersecurity News
WhatsApp’s End-to-End Encryption Isn’t Actually Broken
WhatsApp’s moderators sent messages flagged by intended recipients. Researchers say this isn't concerning -- yet.
Honing Cybersecurity Strategy When Everyone’s a Target for Ransomware
Aamir Lakhani, researcher at FortiGuard Labs, explains why organizations must extend cyber-awareness training across the entire enterprise, from Luddites to the C-suite.
WooCommerce Multi Currency Bug Allows Shoppers to Change eCommerce Pricing
The security vulnerability can be exploited with a malicious CSV file.
Over 60 million wearable, fitness tracking records exposed via unsecured database
Data sources included Apple's HealthKit and Fitbit.Over 60 million wearable, fitness tracking records exposed via unsecured database
Data sources included Apple's HealthKit and Fitbit.This is how a cybersecurity researcher accidentally broke Apple Shortcuts
Detectify explains how investigating CloudKit resulted in Shortcuts disruption for users back in March.Beware of these 5 common scams you can encounter on Instagram
From cybercriminal evergreens like phishing to the verification badge scam we look at the most common tactics fraudsters use to trick their victims
The post Beware of these 5 common scams you can encounter on Instagram appeared first on WeLiveSecurity
MyRepublic Data Breach Raises Data-Protection Questions
The incident raises considerations for security for critical data housed in third-party infrastructure, researchers say.
Top Steps for Ransomware Recovery and Preparation
Alex Restrepo, Virtual Data Center Solutions at Veritas Technologies, discusses post-attack restoration options, and how to prepare for another one in the future.
KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”
On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. The assault came from "Meris," the same new "Internet of Things" (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer.Week in security with Tony Anscombe
Cyberespionnage against Kurdish ethnic group, and more! – Week in security with Tony Anscombe
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
Victims duped out of US$1.8 million by BEC and Romance scam ring
Elderly men and women were the main targets of the romance scams operated by the fraudsters.
The post Victims duped out of US$1.8 million by BEC and Romance scam ring appeared first on WeLiveSecurity
Yandex Pummeled by Potent Meris DDoS Botnet
Record-breaking distributed denial of service attack targets Russia’s version of Google - Yandex.
SOVA, Worryingly Sophisticated Android Trojan, Takes Flight
The malware appeared in August with an ambitious roadmap (think ransomware, DDoS) that could make it 'the most feature-rich Android malware on the market.'
5 Steps For Securing Your Remote Work Space
With so many people still working from home, cybercriminals are trying to cash in. Cyberattacks have increased 300% and the risk of losing important data or being compromised is much greater at home.
Here are five recommendations for securing your home office.
Google debuts new Private Compute features in ramp up of Android security
Google will also make the source code public for external audits.Stolen Credentials Led to Data Theft at United Nations
Threat actors accessed the organization’s proprietary project management software, Umoja, in April, accessing the network and stealing info that can be used in further attacks.
US military reservist lands himself prison sentence for operating romance scams
Older women and men were among his targets.Nuisance calls could lead to multimillion-pound fines in UK
Ministers considering bringing punishment in line with GDPR, which can issue fine of up to £17.5m
Multimillion-pound fines could be imposed for nuisance or fraudulent calls and texts under a proposed overhaul of the UK’s data rules.
Companies behind nuisance communications can be fined £500,000 by the Information Commissioner’s Office (ICO) but ministers are considering bringing the punishment in line with General Data Protection Regulation (GDPR), which can issue a fine of up to £17.5m or 4% of global turnover.
Continue reading...